Issues

Pull Requests

Commits

Fixes CSRF Protection for Cached Pages

Fixes Storefront pages having an invalid authenticity token for CSRF protection due to HTTP caching. Adds the token to the current_user.json response, and adds a JavaScript module to append the token (as a hidden input) to all form elements.

Issues

Pull Requests

Commits

Fixes Unused Translations Included in JavaScript

Adds a default configuration for Rails i18n to Workarea Core. Configures exactly one locale, en, so that additional, unused translation are not included in Production JavaScript. Prior to this change, apps that did not configure Rails i18n were serving extremely large JavaScript files due to the inclusion of unused translations.